"Hackers Proxyjack & Cryptomine Selenium Grid Servers"

Threat actors have been infecting Internet-exposed Selenium Grid servers to use victims' Internet bandwidth for cryptomining, proxyjacking, and more. Wiz reports that 30 percent of cloud environments use Selenium, an open source suite of tools for browser automation. Millions of developers and thousands of organizations use Selenium Grid, an open source tool for automatically testing web applications across multiple platforms and browsers in parallel. Some hackers have launched automated malware to hijack Selenium Grid servers for malicious purposes. Cado Security recently launched a honeypot to gauge the threats that untended Selenium Grid servers face. This article continues to discuss the attacks caught by Cado Security's honeypot.

Dark Reading reports "Hackers Proxyjack & Cryptomine Selenium Grid Servers"

Submitted by grigby1

Submitted by Gregory Rigby on